Archive

Author Archive

SCCM – Exclude updates


Sometimes (not often i hope) you want to exclude updates for somehow that you are deploying to all your computers with System Center Configuration Manager 2012.
The excluding of Windows updates can be done with some few steps.

So this is how you do it:

1. Start with creating av “excluded updates” folder under “Software Library -> Software Updates -> All Software Updates”
exclude_patch4

2. Move updates that you want to exclude into this folder (right click and “move”)
exclude_patch1

3. Navigate to your moved updated and right click it then go to “Properties” and in the pane “Custom Severity” choose “Low”
exclude_patch

4. Navigate to your “Automatic Deployment Rule” and edit your rule so that you only distribute updates that are marked as “None” in Custom Severity
exclude_patch3

 

With this the next time the ADR is running it will distribute only the updates that does not have any “Custom Severity” defined on them, all updates that are to be distributed every month comes with none custom severity and therefore you will not send out the one that you change severity of.

exclude_patch5
exclude_patch6

 

Powershell: Exchange – List all mailboxes in one database


To list all mailboxes in one database and sort it by size, use this nice PowerShell line:

Get-MailboxStatistics -Database <DATABASENAME> | select DisplayName, ItemCount, TotalItemSize | Sort-Object TotalItemSize -Descending

 

If you want to export the list to an CSV file, put “| Export-CSV C:\MailBoxSize.CSV” at the end of the PowerShell line.

Exchange tips: Out of Office on users


To check information about Out Of Office for mailbox users we can run an powershell “one liner” and get useful information.

The PS, Get-MailboxAutoReplyConfiguration “username” will show you this useful information:

  • AutoReplyState (Disabled/Enabled)
  • Start date (date and time)
  • End date (date and time)
  • External Message (in HTML format)
  • Internal Message (in HTML format)

OOO_ps

With this command you can easily change the message as wel!

Get-MailboxAutoReplyConfiguration julras | Set-MailboxAutoReplyConfiguration -ExternalMessage “Hi, I`m testing OOO” -InternalMessage “Hi, I`m testing OOO” -Autoreplystate Enabled

As you can see in my PS command i here GET the results of “julras” user and pipe it throug an SET command to change the External and internal message and then Enable the Out of Office for the user.

AD: Windows Time configuration


Domain controllers

It is ONLY the domain controller holding the PDC role that should use external NTP. All the other domain controllers should sync with PDC domain controller. To find the server holding the PDC role run
netdom /query fsmo

On the domain controller holding the FSMO role you should configure NTP with this command
w32tm /config /manualpeerlist:"1.no.pool.ntp.org 2.no.pool.ntp.org" /syncfromflags:manual /reliable:yes /update

On the other domain controllers configure NTP with this command
w32tm /config /syncfromflags:domhier /reliable:no /update

Servers

On the servers in the domain you should configure NTP with this command
w32tm /config /syncfromflags:domhier /update

Servers outside the domnain should use this:
w32tm /config /manualpeerlist:"IP" /syncfromflags:manual /reliable:yes /update

Some info

All the above configuration has to be followed by the command below to take effect
net stop w32time
net start w32time

If you wan’t to query a NTP source run this
w32tm /monitor /computers:p2dc02.corp.local,ntp.as2116.net

If w32tm don’t exist as a service
%windir%\system32\w32tm /register

Thnx to Henning Ims for this fantastic solution. 🙂

DFS Replication error on Domain Controllers

November 20, 2013 Leave a comment

If you have DFS replication errors on one or more domain controllers, first find out witch domain controller that has the error.
log on to all your domain controllers and check the Event log -> Applications and Services Logs -> DFS Replication and look for Warnings.

In this example the domain controller had an dirty shutdown based on power failure.

If you find this one, the resolution is described in the event
ad_repl

1. first of all, take backup of your SYSVOL directory on all domain controllers (usually found under c:\windows\sysvol)
2. run the wmic command described in your event id in an elevated command prompt
3. the method should execute successful and the Return Value should be like 0;
ad_repl1

When this is done, you should see an information event in event viewer:
ad_repl2

Get-Inboxrule – easy way to get rules from mailboxes

November 11, 2013 Leave a comment

An easy command for checking if there are any automatic rules on an Exchange Mailbox is to use PowerShell and Get-InboxRule, this commandlet will give you an output of all the rules and what the rule does with emails that`s arriving in the mailbox.

Example: Get-InboxRule -Mailbox “account” | Select Name, Description | fl

exc_ps

Test-NetConnection the new Ping?


In Windows Server 2012 R2 Microsoft added a new PowerShell command for testing your network Connection. (It works with WIndows 8.1 also)
Can it be used for “The New ping” ? it sure can! 🙂

The Test-NetConnection cmdlet displays diagnostic information for a connection. The output includes the results of a DNS lookup, a listing of IP interfaces, an option to test a TCP connection, IPsec rules, and confirmation of connection establishment.

The command is:
Test-NetConnection “url/ip”

open PowerShell and type:

Test-NetConnection vg.no (where “vg.no” is an url or ip that you want to ping)

test-netconnection

if you want to go more Advanced try this:

Test-NetConnection vg.no -tracerout

test-netconnection-tracert

or maybe you want to do an telnet and check the for an port:

Test-NetConnection vg.no http or Test-NetConnection vg.no -port 443

idefix_3

 

For more information about this New Nice feature for Windows Server 2012 R2 visit TechNet:
http://technet.microsoft.com/en-us/library/dn372891.aspx

%d bloggers like this: